This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: xnvN62PDfd+6u27H8xiyGYCIQCUizIXDUNc6Al74Jvo= Subject key identifier: B8:56:FD:69:FB:43:53:C0:25:16:B0:42:65:B4:39:B3:4D:14:C2:04 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0B49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0B42 Signing time: Thu 04 Dec 2025 18:35:13 +0000 Manifest this update: Thu 04 Dec 2025 18:35:12 +0000 Manifest next update: Thu 11 Dec 2025 18:35:12 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: qf1vxXP97voPpNLM0OscuM9j3KLUQN13T+vyrLZuHmQ=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2889 (0xb49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Dec 4 18:35:12 2025 GMT Not After : Dec 11 18:35:12 2025 GMT Subject: CN=6931d460-9bfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:86:81:a7:bd:c3:82:02:34:2b:b3:7b:ea:a7: 5b:ae:9a:2a:9b:45:6d:22:6b:d5:0e:85:a2:75:4b: 53:ee:38:91:42:cc:e4:67:9b:ef:00:4e:78:4b:84: 27:45:ce:d3:6e:3d:33:0c:6c:96:71:48:8b:78:be: 4e:39:02:2b:26:53:e4:7b:fe:83:6e:a8:29:32:2b: f4:a9:09:e7:91:17:02:80:e4:6b:cc:88:4e:56:ad: 76:5d:74:ab:a6:e4:34:dd:e0:eb:28:92:c9:20:83: eb:01:61:bb:61:8d:26:03:b3:91:90:4d:53:e8:52: fb:fa:4c:a8:31:70:36:85:e4:f2:15:64:39:6f:e7: b3:ab:77:a2:1a:3d:0f:4b:d8:6b:4f:df:0d:84:2b: 38:0c:b9:a5:38:f3:85:8f:1d:e2:27:0c:af:6a:3b: 9b:35:fc:33:22:ef:d5:2f:26:93:e3:70:42:29:13: 48:01:83:ea:2b:f6:24:68:14:70:8b:87:93:71:c1: 4d:8c:8a:dc:e4:a0:40:9c:4f:53:ef:83:8e:fb:f3: 75:46:0b:1d:17:6c:f2:0a:f0:a2:4d:be:fb:d4:a1: 69:83:c8:6b:ff:7e:ee:7f:7d:9f:8e:54:01:4a:2e: e0:fb:95:16:8a:c9:50:ea:2e:3a:89:f3:3a:56:4d: 72:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:56:FD:69:FB:43:53:C0:25:16:B0:42:65:B4:39:B3:4D:14:C2:04 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:e3:30:34:7a:fb:d6:3a:ed:23:64:09:af:1c:29:05:ce:52: ed:26:36:ef:75:97:fa:98:9a:cf:c7:0e:ba:b2:0c:ea:5a:f8: 78:e0:5e:83:bd:36:db:e3:8d:12:2f:82:51:3b:d9:7b:5c:3e: 97:4e:f0:5a:71:41:21:de:d4:e7:3e:f8:d0:54:98:5f:6e:52: b9:2d:2c:ad:ca:dd:a1:79:c6:76:37:65:31:10:ed:7b:ab:23: db:9b:67:0b:c5:d1:e6:e5:ce:f2:bf:5c:4b:50:c1:d5:8b:79: 8a:92:b8:87:3e:c4:28:d6:8e:d3:dc:80:76:66:b5:ca:fe:74: 4c:c7:94:9e:db:7f:be:9c:16:82:7a:8c:58:4b:08:8b:e4:ac: 57:51:19:56:b4:c1:b1:6a:e4:a1:35:c0:b2:43:87:a6:b4:84: ca:05:aa:9a:80:36:8b:a0:28:d6:f0:05:fd:e8:a9:66:b7:92: 4a:81:f1:50:ef:a6:57:57:c7:9f:43:76:c3:31:bc:79:0a:a4: ad:e8:a7:34:28:3b:dd:ec:73:9f:82:f6:30:f2:37:23:7c:8e: a2:19:ba:68:5f:e3:e5:91:a4:f6:e6:f5:7d:95:1d:5f:03:a1: fd:73:a8:68:54:81:ed:54:0f:65:96:f2:b9:4c:5d:0c:c7:5f: 9b:85:9b:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUxMjA0MTgzNTEyWhcNMjUxMjExMTgzNTEyWjAYMRYwFAYD VQQDEw02OTMxZDQ2MC05YmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIaBp73DggI0K7N76qdbrpoqm0VtImvVDoWidUtT7jiRQszkZ5vvAE54S4Qn Rc7Tbj0zDGyWcUiLeL5OOQIrJlPke/6DbqgpMiv0qQnnkRcCgORrzIhOVq12XXSr puQ03eDrKJLJIIPrAWG7YY0mA7ORkE1T6FL7+kyoMXA2heTyFWQ5b+ezq3eiGj0P S9hrT98NhCs4DLmlOPOFjx3iJwyvajubNfwzIu/VLyaT43BCKRNIAYPqK/YkaBRw i4eTccFNjIrc5KBAnE9T74OO+/N1RgsdF2zyCvCiTb771KFpg8hr/37uf32fjlQB Si7g+5UWislQ6i46ifM6Vk1yNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhW/Wn7 Q1PAJRawQmW0ObNNFMIEMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD4zA0evvWOu0jZAmvHCkFzlLtJjbvdZf6mJrPxw66sgzqWvh44F6D vTbb440SL4JRO9l7XD6XTvBacUEh3tTnPvjQVJhfblK5LSytyt2hecZ2N2UxEO17 qyPbm2cLxdHm5c7yv1xLUMHVi3mKkriHPsQo1o7T3IB2ZrXK/nRMx5Se23++nBaC eoxYSwiL5KxXURlWtMGxauShNcCyQ4emtITKBaqagDaLoCjW8AX96Klmt5JKgfFQ 76ZXV8efQ3bDMbx5CqSt6Kc0KDvd7HOfgvYw8jcjfI6iGbpoX+PlkaT25vV9lR1f A6H9c6hoVIHtVA9llvK5TF0Mx1+bhZun -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:01 2025 by rpki-client